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1. (currently amended) A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information !„; 
selecting at least one session encryption key K; 

partitioning users not in a revoked set R into disjoint subsets Si,,...Sin, having associated subset 
keys Li,,... Li^; [and] 

encrypting the session key K with the subset keys , . . . , Lim to render m encrypted versions of the 
session key Ki 

partitioning the users into groups S, S„,, wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherein each subset Si |....Si^ includes all leaves in a subtree rooted at some node Vj. at 
least each node in the subtree being associated with a respective subset key, wherein content is provided to 
users in at least one message deFuiing a header, and the header includes at most r*log(N/r) subset keys and 
encryptions, wherein r is the number of users in the revoked set R and N is the total number of users. 

2. (canceled). 

3. (currently amended) The method of Claim [2]1, wherein the tree is a complete binary tree. 

4. (original) The method of Claim 1, further comprising using private information to decrypt die 
session key. 
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5. (original) The method of Claim 4, wherein the act of decrypting includes using information ij such 
that a user belongs to a subset Sy, and retrieving a subset key Ly using the private information of the user. 

6. (canceled). 

7. (canceled). 

8 . (currently amended) The method of Claim [6] 1, wherein each user must store log N keys, wherein 
N is the total number of users. 

9. (currently amended) Th e m e thod of Claim 6 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 

selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets Si i....Sin^ having associated subset 
keys L iH..Xi^; [and] 

encrypting the session kev K with the subset keys Lj , 1^ ^ to render m encrypted versions of the 

session key K: 

partitioning the users into groups S„„ wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherem each subset S, ! .. ..Sj m includes all leaves m a subtree rooted at some node V; . at 
least each node in the subtree being associated with a respective subset key , wherein content is provided to 
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users in at least one message, and wherein each user processes the message using at most log log N 
operations plus a single decryption operation, wherein N is the total number of users. 

10. (currently amended) The method of Claim [6] 1 , wherein the revoked set R defines a spanning tree, 
and subtrees having roots attached to nodes of the spanning tree define the subsets. 

1 1 . (currently amended) The method of Claim [2]L wherein the tree includes a root and plural nodes, 
each node having at least one associated label, and wherein each subset includes all leaves in a subtree rooted at 
some node Vi that are not in the subtree rooted at some other node Vj that descends from Vj. 

12. (currendy amended) Th e m e thod of Claim 11 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 

selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets Sn....Si m having associated subset 
keysLi„,^J^ 

encrvpting the session key K with the subset keys L - ^ to render m encrypted versions of the 

session key K: 

partitioning the users into groups Si S,y. wherein "w" is an integer, and Qie groups establish 

subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at least one 
associated label, and wherein each subset includes all leaves in a subtree rooted at some node v^ that are 
not in the subtree rooted at some other node Vj that descends from V; . wherein content is provided to users 
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in at least one message defining a header, and the header includes at most 2r-l subset keys and 
encryptions, wherein r is the nimiber of users in the revoked set R. 

1 3 . (currently amended) Th e m e thod of Claim 1 1 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 

selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets Si i.,..Si^ having associated subset 
keys L„^^i^ 

encrypting the session key K with the subset keys L n L^^ , to render m encrypted versions of the 

session key K: 

partitioning the users into groups S ] S,, „ wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherein the tree mcludes a root and plural nodes, each node havmg at least one 
associated label, and wherein each subset includes all leaves in a subtree rooted at some node V; that are 
not in the subtree rooted at some other node Vj that descends from V; . wherein each user must store .51og^ 
N + .51og N 4- 1 keys, wherein N is the total number of users. 

14. (currently amended) Th e m e thod of Claim 1 1 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 

selecting at least one session encryption kev K: 

partitioning users not in a revoked set R into disjoint subsets S. ^ ^.^.S-^ having associated subset 
keys L i| ,...L |^; 
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encrypting the session key K with the subset keys L j, L; ^ to render m encrypted versions of the 

session key K: 

partitioning the users mto groups S,„ . wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at least one 
associated label, and wherein each subset includes all leaves in a subtree rooted at some node V; that are 
not in the subtree rooted at some other node Vj that descends from v^ . wherein content is provided to users 
in at least one message, and wherein each user processes the message using at most log N operations plus 
a single decryption operation, wherein N is the total number of users. 

15. Th e m e thod of Claim 11 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 
selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets Sn ....Si^^ having associated subset 
keys L ji^^bnl 

encrypting the session key K with the subset keys Lj , Lj^ ^ to render m encrypted versions of the 

session key K: 

partitioning the users into groups S . S„,. wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at least one 
associated label, and wherein each subset includes all leaves in a subtree rooted at some node V; that are 
not in the subtree rooted at some other node Vj that descends from Vj . wherein the revoked set R defines a 
spanning tree, and wherein the method includes: 
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initializing a cover tree T as the spanning tree; 

iterative ly removing nodes from the cover tree T and adding nodes to a cover until the cover tree 
T has at most one node. 

16. Th e m e thod of Claim 11 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 
selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets S; ,..,S-^ having associated subset 
keys Lit^^inU 

encrypting the session key K with the subset kevs Lp L^^ , to render m encrvpted versions of the 

session key K: 

partitioning the users into groups S,,, . wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at least one 
associated label, and wherem each subset includes all leaves in a subtree rooted at some node V; that are 
not in the subtree rooted at some other node Vj that descends from Vj , wherein each node has at least one 
label possibly induced by at least one of its ancestors, and wherein each user is assigned labels from all 
nodes hanging from a direct path between the user and the root but not from nodes in the direct path. 

17. (original) The method of Claim 16, wherein labels are assigned to subsets using a pseudorandom 
sequence generator, and the act of decrypting includes evaluating the pseudorandom sequence generator. 
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1 8 . (currently amended) Th e m e thod of Claim 1 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 

selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets Si |....Sin, having associated subset 
keys L n ....L^: and 

encrypting the session key K with the subset keys L; , , . . . X^ p to render m encrypted versions of the 
session key wherein content is provided to users in at least one message having a header including a 
cryptographic function El, and the method includes prefix-truncating the cryptographic function El. 

19. (currently amended) The method of Claim [2] 1 , wherein the tree includes a root and plural nodes, 
each node having an associated key, and wherein each user is assigned keys from all nodes in a direct path between 
a leaf representing the user and the root. 



20. (currently amended) The m e thod of Claim 1 A method for broadcast encryption, comprising: 
assigning each user in a group of users respective private information I„ : 
selecting at least one session encryption key K: 

partitioning users not in a revoked set R into disjoint subsets Si i....Sin, having associated subset 
keys L ^i ....L jT n: and 

encrypting the session key K with the subset keys Lj , L^ ^ ^ to render m encrypted versions of the 

session key K . wherein content is provided to users in at least one message defining plural portions, and 
each portion is encrypted with a respective session key. 
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21. (currently amended) A computer program device, comprising: 

a computer program storage device including a program of instructions usable by a computer, 
comprising: 

logic means for accessing a tree to identify plural subset keys; 
logic means for encrypting a message with a session key; 

logic means for encrypting the session key at least once with each of the subset keys to render 
encrypted versions of the session key; [and] 

logic means for sending the encrypted versions of the session key in a header of the message to 
plural stateless receivers , wherein logic means provide content to receivers in at least one message, and 
wherem each receiver processes the message using at most log log N operations plus a single decryption 
operation, wherein N is the total nimiber of receivers. 

22. (original) The computer program device of Claim 21, further comprising: 

logic means for partitioning receivers not in a revoked set R into disjoint subsets Sa , . . . Sim having 
associated subset keys Lii , . . . .L-^. 

23. (origmal) The computer program device of Claim 22, further comprising logic means for 
partitioning the users into groups Si,...,S^, wherein "w" is an integer, and the groups establish subtrees in a tree. 

24. (original) The computer program device of Claim 21, further comprising logic means for using 
private information to decrypt the session key. 
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25 . (original) The computer program device of Claim 24, wherein the means for decrypting includes 
logic means for using information ij such that a receiver belongs to a subset Sy, and retrieving a key Ly from the 
private information of the receiver. 

26. (original) The computer program device of Claun 23, wherein each subset S;,, . . .S„„ includes all 
leaves in a subtree rooted at some node Vj, at least each node in the subtree being associated with a respective 
subset key. 

27. (canceled). 

28. (original) The computer program device of Claim 26, wherein each receiver must store log N 
keys, wherein N is the total nimiber of receivers. 

29 (canceled). 

30. (original) The computer program device of Claim 26, wherein the revoked set R defines a 
spanning tree, and subtrees havmg roots attached to nodes of the spaiming tree define the subsets, 

3 1 . (origmal) The computer program device of Claim 23 , wherein the tree includes a root and plural 
nodes, each node having at least one associated label, and wherein each subset includes all leaves in a subtree 
rooted at some node V; that are not m the subtree rooted at some other node Vj that descends fi*om Vj. 
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32. (currently amended) Th e computer program d e vice of Claim 31 A computer program device, 
comprising: 

a computer program storage device including a program of instructions usable bv a computer, 
comprising: 

logic means for accessing a tree to identify plural subset keys: 
logic means for encrypting a message with a session key: 

logic means for encrvptmg the session key at least once with each of the subset keys to render 
encrypted versions of the session key: 

logic means for sending the encrypted versions of the session key in a header of the message to 
plural stateless receivers: 

logic means for partitioning receivers not m a revoked set R into disjoint subsets Sj , . . . .S;^ having 
associated subset keys L j^: 

logic means for partitioning the users into groups S,,. , wherein "w" is an integer, and the 

groups establish subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at 
least one associated label, and wherein each subset includes aU leaves in a subtree rooted at some node v^ 
that are not in the subtree rooted at some other node Vj that descends from Vj . wherein logic means provide 
content to receivers in at least one message defining a header, and the header includes at most 2r-l subset 
keys and encryptions, wherein r is the number of receivers in the revoked set R. 



1053- 121. AM2 



13 



33. (currently amended) Th e comput e r program device of Claim 31 A computer program device, 
comprising: 

a computer program storage device including a program of instructions usable bv a computer, 
comprising: 

logic means for accessing a tree to identify plural subset keys: 
logic means for encrypting a message with a session key: 

logic means for encrypting the session key at least once with each of the subset keys to render 
encrypted versions of the session key: 

logic means for sending the encrypted versions of the session key in a header of the message to 
plural stateless receivers: 

logic means for partitioning receivers not m a revoked set R into disjoint subsets Sn > > . .Sjn, having 
associated subset keys L n L ;^: 

logic means for partitioning the users mto groups S, S, ^ , wherein "w" is an integer, and the 

groups establish subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at 
least one associated label, and wherein each subset includes all leaves in a subtree rooted at some node Vj 
that are not in the subtree rooted at some other node Vj that descends from v,- . wherein each receiver must 
store .51og^ N + .51og N +1 keys, wherein N is the total number of receivers. 

34. (currently amended) The comput e r program devic e of Claim 31 A computer program device, 
comprising: 
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a computer program storage device including a program of instructions usable by a computer, 
comprising: 

logic means for accessing a tree to identify plural subset keys: 
logic means for encrypting a message with a session key: 

logic means for encrypting the session key at least once with each of the subset keys to render 
encrypted versions of the session key: 

logic means for sending the encrypted versions of the session key in a header of the message to 
plural stateless receivers: 

logic means for partitioning receivers not in a revoked set R into disjoint subsets Sn . . . .Sj^^ having 
associated subset keys 1^ ^ Lj ^n* 

logic means for partitioning the users into groups St S^, wherein "w" is an integer, and the 

groups establish subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at 
least one associated label, and wherein each subset includes all leaves in a subtree rooted at some node V; 
that are not in the subtree rooted at some other node Vj that descends from Vj , wherein logic means provide 
content to receivers in at least one message, and wherein each receiver processes the message using at 
most log N operations plus a single decryption operation, wherein N is the total number of receivers. 

35. (currently amended) Th e comput e r program d e vice of Claim 31 A computer program device, 
comprising: 

a computer program storage device including a program of instructions usable bv a computer, 
comprising: 
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logic means for accessing a tree to identify plural subset key s; 
logic means for encrypting a message with a session key; 

logic means for encrypting the session kev at l east once with each of the subset kevs to render 
encrypted versions of the session key: 

logic means for sending the encrypted versions of the session kev in a header of the message to 
plural stateless receivers: 

logic means for partitioning receivers not in a revoked set R into disiomt subsets , . . .S^ ^ having 
associated subset keys L ^, L j^: 

logic means for partitioning the users into groups S| S., . , wherein "w" is an integer, and the 

groups establish subtrees in a tree, wherein the tree includes a root and plural nodes, each node having at 
least one associated label, and wherein each subset includes all leaves in a subtree rooted at some node V; 
that are not in the subtree rooted at some other node Vj that descends from Vj . wherein the revoked set R 
defines a spanning tree, and wherein (original) Th e the computer program device includes: 

logic means for initializing a cover tree T as the spanning tree; and 

logic means for iteratively removing nodes from the cover tree T and adding nodes to a cover until 
the cover tree T has at most one node. 

36. (original) The computer program device of Claim 35, wherein logic means assign labels to 
receivers using a pseudorandom sequence generator, and the labels induce subset keys. 
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37. (original) The computer program device of Claim 36, wherein the means for decrypting includes 
evaluating the pseudorandom sequence generator. 

38. (currently amended) Th e comput e r program d e vice of Claim 21 A computer program device, 
comprising: 

a computer program storage device including a program of instructions usable by a computer, 
comprising: 

logic means for accessing a tree to identify plural subset keys: 
logic means for encrypting a message with a session key: 

logic means for encrypting the session kev at least once with each of the subset keys to render 
encrypted versions of the session key: and 

logic means for sending the encrypted versions of the session key in a header of the message to 
plural stateless receivers , wherem logic means provide content to receivers in at least one message having 
a header includmg a cryptographic function El, and (original) The the computer program device includes 
logic means for prefix-truncating the cryptographic function E^. 

39. (original) The computer program device of Claim 23, wherein the tree includes a root and plural 
nodes, each node having an associated key, and wherein logic means assign each receiver keys from all nodes in a 
direct path between a leaf representing the receiver and the root. 
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40. (currently amended) Th e comput e r program devic e of Claim 21 A computer program device, 
comprising: 

a computer program storage device including a program of instructions usable by a computer, 
comprising: 

logic means for accessing a tree to identify plural subset keys: 
logic means for encrypting a message with a session key: 

logic means for encrypting the session key at least once with each of the subset keys to render 
encrypted versions of the session key: and 

logic means for sending the encrypted versions of the session key in a header of the message to 
plural stateless receivers , wherein logic means provide content to receivers in at least one message 
defining plural portions, and each portion is encrypted with a respective session key. 

41 . (currently amended) A computer programmed with instructions to cause the computer to execute 
method acts including: 

encrypting broadcast content; [and] 

sending the broadcast content to plural stateless receivers and to at least one revoked receiver such 
that each stateless receiver can decrypt the content and the revoked receiver cannot decrypt the content^ 

partitioning the users into groups S| S,„. wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherein each subset Sj i ,. . .Sj ^ includes all leaves in a subtree rooted at some node Vj . at 
least each node in the subtree being associated with a respective subset key, wherein content is provided to 
receivers in at least one message defining a header, and the header includes at most r*log(N/r) subset kevs 
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and encryptions, wherein r is the number of receivers in the revoked set R and N is the total number of 
receivers . 

42. (original) The computer of Claim 41, wherein the method acts further comprise: 
assigning each receiver in a group of receivers respective private information !„; 
selecting at least one session encryption key K; 

partitioning all receivers not in a revoked set R into disjoint subsets Sii,...Sun having associated 
subset keys Lii,...,Lim; and 

encrypting the session key K with the subset keys Lji, . . . ,hi^ to render m encrypted versions of the 
session key K. 

43. (canceled). 

44. (currently amended) The computer of Claim [43]4L wherein the tree is a complete binary tree. 

44. (canceled). 

45 . (currently amended) The computer of Claim [44]49, wherein the act of decrypting undertaken by 
the computer includes using information ij such that a receiver belongs to a subset Sij, and retrieving a key Lij using 
the private information of the receiver. 
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46. (canceled). 

47. (canceled). 

48. (currently amended) The computer of Claim [46]41, wherein each receiver must store log N keys, 
wherein N is the total nimiber of receivers. 

49. (currently amended) Th e comput e r of Claim 4 6 A computer progranmied with instructions to 
cause the computer to execute method acts including: 

encrypting broadcast content: 

partitioning users into groups S | S,,, . wherein "w" is an integer, and the groups establish 

subtrees in a tree, wherem each subset Si |,...Sin, includes all leaves in a subtree rooted at some node V; , at 
least each node in the subtree being associated with a respective subset key: 

sending the broadcast content to plural stateless receivers and to at least one revoked receiver such 
that each stateless receiver can decrypt the content and the revoked receiver cannot decrypt the content, 
wherein content is provided to receivers in at least one message, and wherein each receiver processes the 
message using at most log log N operations plus a sirigle decryption operation, wherein N is the total 
number of receivers. 

50. (currently amended) The computer of Claim [46]4L, wherein the revoked set R defines a spanning 
tree, and subtrees havmg roots attached to nodes of the sparming tree define the subsets. 
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51. (original) The computer of Claim 41 [43] , wherein the tree includes a root and plural nodes, each 
node having at least one associated label, and wherein each subset includes all leaves m a subtree rooted at some 
node Vi that are not in the subtree rooted at some other node Vj that descends from Vi. 

52. (original) The computer of Claim 51, wherein content is provided to receivers in at least one 
message defining a header, and the header includes at most 2r-l subset keys and encryptions, wherein r is the 
number of receivers in the revoked set R. 

53. (original) The computer of Claim 51, wherein each receiver must store .51og^ N 4- .51og N + 1 
keys, wherein N is the total number of receivers. 

54. (original) The computer of Claim 51, wherein content is provided to receivers in at least one 
message, and wherein each receiver processes the message using at most log N operations plus a single decryption 
operation, wherein N is the total nimiber of receivers. 

55. (original) The computer of Claim 51, wherein the revoked set R defines a spanning tree, and 
wherein the method acts undertaken by the computer further include: 

initializing a cover tree T as the spanning tree; 

iteratively removing nodes from the cover tree T and adding nodes to a cover until the cover tree 
T has at most one node. 
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56. (original) The computer of Claim 55, wherein the computer assigns node labels to receivers fem 
the tree using a pseudorandom sequence generator. 

57. (original) The computer of Claim 56, wherein the act of decrypting undertaken by the computer 
includes evaluating the pseudorandom sequence generator. 

58. (currently amended) Th e comput e r of Claim 4 1 A computer programmed with instructions to 
cause the computer to execute method acts including: 

encrypting broadcast content: 

sending the broadcast content to plural stateless receivers and to at least one revoked receiver such 
that each stateless receiver can decrypt the content and the revoked receiver cannot decrypt the content. 
wherein content is provided to receivers in at least one message having a header including a cryptographic 
function El, and the method acts undertaken by the computer include prefix-truncating the cryptographic 
function E^. 

59. (currently amended) The comput e r of Claim 4 1 A computer progranmied with instructions to 
cause the computer to execute method acts including: 

encrypting broadcast content: 

sending the broadcast content to plural stateless receivers and to at least one revoked receiver such 
that each stateless receiver can decrypt the content and the revoked receiver cannot decrypt the content. 
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wherein content is provided to receivers in at least one message defining plural portions, and each portion 
is encrypted by the computer with a respective session key. 

60. (original) The method of Claim 1 1 , wherein each node has plural labels with each ancestor of the 
node inducing a respective label, and wherein each user is assigned labels from all nodes hanging from a direct 
path between the user and the root but not from nodes m the direct path. 

61-64. (canceled). 

65. (previously presented) A receiver of content, comprising: 
means for storing respective private information !„; 

means for receiving at least one session encrj^tion key K encrypted with plural subset keys, the 
session key encrypting content; and 

means for obtaining at least one subset key using the private information such that the session key 
K can be decrypted to play the content, wherein the receiver receives content in at least one message 
defiriing a header, and the header includes at most r*log(N/r) subset keys and encryptions, wherein r is the 
number of receivers in a revoked set R and N is the total number of receivers. 

66. (original) The receiver of Claim 65, wherein the receiver is partitioned into one of a set of groups 
Si,...,Sw, wherein "w" is an integer, and the groups establish subtrees in a tree defining nodes and leaves. 
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67. (original) The receiver of Claim 66, wherein subsets Sn,...,Sin, derived from the set of groups 
Si,...,Sw define a cover. 

68. (canceled). 

69. (original) The receiver of Claun 67, wherein the receiver must store log N keys, wherein N is the 
total number of receivers. 

70. (previously presented) A receiver of content, comprising: 
means for storing respective private information !„; 

means for receiving at least one session encryption key K encrypted with plural subset keys, the 
session key encrypting content; and 

means for obtaining at least one subset key using the private information such that the session key 
K can be decrypted to play the content, wherem the receiver receives content in at least one message 
defining a header, and wherein the receiver processes the message using at most log log N operations plus 
a single decryption operation, wherein N is the total number of receivers. 

71 . (original) The receiver of Claim 67, wherein a revoked set R defines a spanning tree, and subtrees 
having roots attached to nodes of the spanning tree define the subsets. 
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72. (original) The receiver of Claim 67, wherein the tree includes a root and plural nodes, each node 
havmg at least one associated label, and wherein each subset includes all leaves in a subtree rooted at some node Vi 
that are not in the subtree rooted at some other node Vj that descends from Vj. 



73. (previously presented) A receiver of content, comprising: 
means for storing respective private information 

means for receiving at least one session encryption key K encrypted with plural subset keys, the 
session key encrypting content; and 

means for obtaining at least one subset key using the private information such that the session key 
K can be decrypted to play the content, wherein the receiver receives content in a message having a header 
including at most 2r-l subset keys and encryptions, wherein r is the number of receivers in the revoked set 
R. 

74. (previously presented) A receiver of content, comprising: 
means for storing respective private information 1^; 

means for receiving at least one session encryption key K encrypted with plural subset keys, the 
session key encrypting content; and 

means for obtaming at least one subset key using the private information such that the session key 
K can be decrypted to play the content, wherein the receiver must store .51og^ N + .Slog N -h 1 keys, 
wherein N is the total number of receivers. 
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75. (previously presented) A receiver of content, comprising: 
means for storing respective private information !„; 

means for receiving at least one session encryption key K encrypted with plural subset keys, the 
session key encrypting content; and 

means for obtaining at least one subset key using the private information such that the session key 
K can be decrypted to play the content, wherein content is provided to the receiver m at least one message, 
and wherein the receiver processes the message using at most log N operations plus a single decryption 
operation, wherein N is the total number of receivers. 

76. (original) The receiver of Claim 72, wherein the receiver decrypts the subset key by evaluating a 
pseudorandom sequence generator. 

77. (previously presented) A receiver of content, comprising: 
a data storage storing respective private information !„; 

a processing device receiving at least one session encryption key K encrypted with plural subset 
keys, the session key encrypting content, the processing device obtaining at least one subset key using the 
private information such that die session key K can be decrypted to play the content, wherein the receiver 
receives content in at least one message defining a header, and wherein the receiver processes the message 
using at most log log N operations plus a single decryption operation, wherein N is the total number of 
receivers. 
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78. (original) The receiver of Claim 77, wherein the receiver is partitioned into one of a set of groiq)S 
Si,...,Sw, wherein "w" is an integer, and the groups establish subtrees in a tree. 

79. (origmal) The receiver of Claim 78, wherein subsets Sn,...,Sin, derived from the set of groups 
S,,...,Sw define a cover. 

80. (original) The receiver of Claim 79, wherein the receiver receives content in at least one message 
defining a header, and the header includes at most r*log(N/r) subset keys and encryptions, wherein r is the number 
of receivers in a revoked set R and N is the total number of receivers. 

81 . (original) The receiver of Claim 79, wherein the receiver must store log N keys, wherein N is the 
total number of receivers. 

82. (canceled). 

83. (original) The receiver of Claun 79, wherein one revoked set R defines a spanning tree, and 
subtrees having roots attached to nodes of the spanning tree define the subsets. 

84. (original) The receiver of Claun 79, wherein the tree mcludes a root and plural nodes, each node 
having at least one associated label, and wherein each subset includes all leaves in a subtree rooted at some node Vj 
that are not in the subtree rooted at some other node Vj that descends from Vj. 
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85. (original) The receiver of Claim 84, wherein the receiver receives content in a message having a 
header including at most 2r-l subset keys and encryptions, wherein r is the number of receivers in the revoked set 
R. 

86. (original) The receiver of Claim 84, wherein the receiver must store .51og^ N + .51og N + 1 keys, 
wherein N is the total number of receivers. 

87. (original) The receiver of Claim 84, wherein content is provided to the receiver m at least one 
message, and wherein the receiver processes the message using at most log N operations plus a single decryption 
operation, wherein N is the total number of receivers. 

88. (original) The receiver of Claim 84, wherem the receiver decrypts the subset key by evaluating a 
pseudorandom sequence generator. 

89-94 (canceled). 

95. (currently amended) The computer of Claim [42]41, wherein die act of partitioning is undertaken 
by a system computer in a system of receivers separate from the system computer. 

96. (currendy amended) The computer of Claim [42]41, wherein the act of partitioning is undertaken 
by a receiver computer. 
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97. (original) The receiver of Claim 67, wherein the receiver derives the subsets in the cover; 

98. (previously presented) The computer of Claim 41 , wherein the method acts include using private 
information to decrypt the session key. 
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